2 comments

[ 3.0 ms ] story [ 18.8 ms ] thread
"Mercedes-Benz accidentally exposed a trove of internal data after leaving a private key online that gave 'unrestricted access' to the company’s source code, according to the security research firm that discovered it."

We never learn. I wonder how many AWS buckets are still open, with or without GitHub leaks?

Human failure is, to some extent, normal. I just wonder how this bypassed our automated security checks that scans the code base for secrets.